$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/qVVTXSqBq0hCvqr5KikOEPD37U4.roa File: qVVTXSqBq0hCvqr5KikOEPD37U4.roa (raw, json) Hash identifier: ftqoD4QhaLyfIA6mfGDp8XZyFADqrmDPtVHyc5qVW2g= Subject key identifier: A9:55:53:5D:2A:81:AB:48:42:BE:AA:F9:2A:29:0E:10:F0:F7:ED:4E Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E2C Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/qVVTXSqBq0hCvqr5KikOEPD37U4.roa Signing time: Mon 26 Aug 2024 05:25:06 +0000 ROA not before: Mon 26 Aug 2024 05:25:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 124.150.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3628 (0xe2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:25:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A955535D2A81AB4842BEAAF92A290E10F0F7ED4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:da:08:3a:df:87:c5:37:d5:e2:c6:b8:9a:a6: 8e:7e:9f:54:8e:b8:df:5a:76:35:36:5a:51:49:52: 95:61:e7:36:f9:84:d5:78:4b:e9:5a:11:3a:a3:35: 98:90:b7:09:5e:c0:dd:94:9e:2f:21:de:1e:66:eb: e4:b7:f1:7d:cf:d9:92:07:00:93:3b:ba:e7:b4:36: ea:b6:28:56:82:0d:00:46:60:fd:83:41:c3:3b:28: c2:1e:85:ee:72:9f:cb:f8:08:a9:be:57:e7:d5:da: 68:08:72:fd:33:04:b6:d4:76:2d:4d:72:6a:71:82: 96:26:bb:db:80:ae:64:9f:5a:db:c9:da:7a:0f:07: 4f:a1:e7:69:4f:78:b5:8f:a7:b4:a3:6f:ae:57:7e: fb:a5:5b:10:b8:ef:25:e9:3f:44:1d:12:a7:eb:ca: de:b2:78:73:0d:98:61:75:6a:9f:3e:90:36:ff:40: 33:53:2d:99:66:7b:8e:90:60:a3:79:a9:1d:fc:2c: 21:cf:45:df:d7:4b:b1:0a:27:ce:f8:d8:9e:74:a2: e1:d8:97:3b:b0:5f:31:3f:3a:f5:ae:0b:42:e0:cc: ae:c5:6f:51:68:ab:3b:1c:5a:01:75:3c:28:71:57: 9c:f9:24:4b:40:9d:b6:58:97:17:94:39:71:e8:0b: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:55:53:5D:2A:81:AB:48:42:BE:AA:F9:2A:29:0E:10:F0:F7:ED:4E X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/qVVTXSqBq0hCvqr5KikOEPD37U4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.150.134.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:df:18:29:1f:2d:6c:33:f3:21:e4:6f:b0:f1:a6:71:8d:04: f3:31:55:30:52:f1:da:bb:ff:09:f2:58:a1:9e:e0:c6:54:58: 7b:ec:0a:c9:d5:c3:fa:4d:77:e8:3c:7d:78:f1:4e:f8:ee:e7: c0:34:af:31:82:a1:26:3f:b0:85:7d:4d:f5:2f:f9:04:b1:84: 65:2b:d7:0c:1f:07:dc:b7:57:9d:44:2b:ad:89:62:7c:5e:fd: 54:c3:93:e8:57:7e:8d:22:63:78:f1:c5:c6:79:e4:db:cc:8a: 34:31:c0:e2:3b:07:14:79:e4:9e:91:d8:27:1e:c2:4d:5d:b1: 54:59:6f:76:2a:5b:98:f7:d2:32:62:e5:19:f2:d1:57:b8:d7: da:97:1f:a1:64:5d:f9:a9:59:90:b4:48:e7:f6:b8:70:38:9b: fc:b1:03:4a:8e:ef:cf:6b:6e:58:75:a8:52:a2:57:24:30:0b: 9f:a4:ae:9e:c0:5c:02:6d:b5:ca:7d:6c:94:f1:e3:a6:7f:35: ea:6b:03:b1:b8:39:93:1a:d0:42:b8:d3:b3:b1:52:f8:b7:6b: 94:af:53:33:48:5e:5d:07:bd:e6:0f:f3:6a:bd:fd:c0:ae:c8: 56:ae:7f:5f:e8:b0:36:7e:b2:bb:89:0a:c7:30:44:7b:9a:46: 7d:bf:0a:99 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI1MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5NTU1MzVEMkE4MUFC NDg0MkJFQUFGOTJBMjkwRTEwRjBGN0VENEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH2gg634fFN9Xixriapo5+n1SOuN9adjU2WlFJUpVh5zb5hNV4 S+laETqjNZiQtwlewN2Uni8h3h5m6+S38X3P2ZIHAJM7uue0Nuq2KFaCDQBGYP2D QcM7KMIehe5yn8v4CKm+V+fV2mgIcv0zBLbUdi1NcmpxgpYmu9uArmSfWtvJ2noP B0+h52lPeLWPp7Sjb65XfvulWxC47yXpP0QdEqfryt6yeHMNmGF1ap8+kDb/QDNT LZlme46QYKN5qR38LCHPRd/XS7EKJ8742J50ouHYlzuwXzE/OvWuC0LgzK7Fb1Fo qzscWgF1PChxV5z5JEtAnbZYlxeUOXHoC6gRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUqVVTXSqBq0hCvqr5KikOEPD37U4wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vcVZWVFhTcUJxMGhDdnFyNUtpa09F UEQzN1U0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWhjAN BgkqhkiG9w0BAQsFAAOCAQEAL98YKR8tbDPzIeRvsPGmcY0E8zFVMFLx2rv/CfJY oZ7gxlRYe+wKydXD+k136Dx9ePFO+O7nwDSvMYKhJj+whX1N9S/5BLGEZSvXDB8H 3LdXnUQrrYlifF79VMOT6Fd+jSJjePHFxnnk28yKNDHA4jsHFHnknpHYJx7CTV2x VFlvdipbmPfSMmLlGfLRV7jX2pcfoWRd+alZkLRI5/a4cDib/LEDSo7vz2tuWHWo UqJXJDALn6SunsBcAm21yn1slPHjpn816msDsbg5kxrQQrjTs7FS+LdrlK9TM0he XQe95g/zar39wK7IVq5/X+iwNn6yu4kKxzBEe5pGfb8KmQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org